CVE-2016-1556
7.5
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
Information disclosure in Netgear WN604 before 3.3.3; WNAP210, WNAP320, WNDAP350, and WNDAP360 before 3.5.5.0; and WND930 before 2.0.11 allows remote attackers to read the wireless WPS PIN or passphrase by visiting unauthenticated webpages.
Affected (6)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 3.0.5.0 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wnap320 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 3.0.5.0 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wndap350 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 3.0.5.0 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wndap360 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 3.0.5.0 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wndap210v2 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 3.3.2 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wn604 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.0.4 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wnd930 | All versions |
References (6)
Source: cret@cert.org
Third Party AdvisoryVDB Entry
Source: cret@cert.org
Mailing ListThird Party Advisory
Source: cret@cert.org
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Timeline
No history available yet.